package com.xiaoxie.controller;

import com.xiaoxie.entity.BaseContext;
import com.xiaoxie.entity.JwtUtil;
import io.jsonwebtoken.Claims;
import lombok.extern.slf4j.Slf4j;
import org.springframework.stereotype.Component;
import org.springframework.web.method.HandlerMethod;
import org.springframework.web.servlet.HandlerInterceptor;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

@Component
@Slf4j
public class JwtTokenAdminInterceptor implements HandlerInterceptor {


    /**
     * 校验jwt
     *
     * @param request
     * @param response
     * @param handler
     * @return
     * @throws Exception
     */
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
        //判断当前拦截到的是Controller的方法还是其他资源
        if (!(handler instanceof HandlerMethod)) {
            //当前拦截到的不是动态方法，直接放行
            return true;
        }

        //1、从请求头中获取令牌
        String token = request.getHeader("token");
        //2、校验令牌
        try {
            Claims claims = JwtUtil.parseJWT("xiaoxie",token);
            String account = (String) claims.get("account");
            BaseContext.setCurrentAccount(account);
            //3、通过，放行
            return true;
        } catch (Exception ex) {
            // 4、不通过，重定向到指定页面
            response.setStatus(401);
            //response.sendRedirect("http://127.0.0.1:8848/word/login.html"); // 替换成您想要重定向的页面路径
            log.info("token验证不通过");
            return false;
        }
    }
}